FR|EN
Tech essential, everyday
FR|EN
CybersecurityJune 9, 2026· via BleepingComputer

CISA Urges Government Agencies to Secure Check Point Vulnerability Exploited by Ransomware

CISA Urges Government Agencies to Secure Check Point Vulnerability Exploited by Ransomware

Image : BleepingComputer

Publicité

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive for federal agencies to secure their Check Point Remote Access VPN and Mobile Access deployments against a critical vulnerability exploited in zero-day attacks by Qilin ransomware affiliates. The agency is urging agencies to take immediate action to patch the flaw, which could allow attackers to gain unauthorized access to sensitive data.

According to CISA, the vulnerability was discovered earlier this month and has been exploited by ransomware gangs using it as a means to carry out zero-day attacks. The affected deployments include Check Point's products such as its Remote Access VPN (RAVP) and Mobile Access (MAA), which are commonly used for remote access and management of network devices.

The agency has emphasized the severity of the situation, stating that the vulnerability could be exploited by attackers to gain unauthorized access to sensitive data, potentially leading to significant financial losses and other forms of harm. The directive from CISA comes as ransomware attacks continue to rise globally, with Qilin ransomware affiliates being among the most prolific perpetrators.

"Federal agencies must take immediate action to secure their Check Point deployments against this critical vulnerability," said a spokesperson for CISA. "Failure to do so could result in significant financial losses and other forms of harm."

The agency has provided a detailed report outlining the severity of the issue, including an analysis of how attackers are exploiting the vulnerability. The affected agencies have been advised to take immediate action to patch the flaw.

"Federal agencies must take immediate action to secure their Check Point deployments against this critical vulnerability," said a spokesperson for CISA. "Failure to do so could result in significant financial losses and other forms of harm."

The agency has emphasized the severity of the situation, stating that the vulnerability could be exploited by attackers to gain unauthorized access to sensitive data, potentially leading to significant financial losses and other forms of harm.

Our Take:

This urgent directive from CISA highlights the growing threat posed by ransomware gangs utilizing zero-day attacks against critical government infrastructure. The Check Point Remote Access VPN and Mobile Access deployments are essential tools for remote access management, but they also pose a significant risk if not properly secured.

The vulnerability has been exploited in multiple instances by Qilin ransomware affiliates, demonstrating the evolving tactics of cybercriminals using this method to carry out attacks. Federal agencies must take immediate action to patch the flaw and ensure that their critical systems are protected against this threat.

For more information on how to secure your Check Point deployments, visit the CISA website or consult with a cybersecurity expert.

Source: BleepingComputer. AI-assisted editorial synthesis — TechnoExpress.

Read the original source on BleepingComputer →

← Back to home

Publicité